Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exUBXdufhEEqZ9s-Jv7LTdy72YA.cer
File: exUBXdufhEEqZ9s-Jv7LTdy72YA.cer (raw, json)
Hash identifier: lf859JuvUwRmmiYK2y+tyZ1ysCv/FrQV5e5uuVgNOmY=
Subject key identifier: 7B:15:01:5D:DB:9F:84:41:2A:67:DB:3E:26:FE:CB:4D:DC:BB:D9:80
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B683
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F6B3D/0E978E64596211EBA40B5C85C4F9AE02/exUBXdufhEEqZ9s-Jv7LTdy72YA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F6B3D/0E978E64596211EBA40B5C85C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 12 Aug 2023 23:05:35 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 132099
IP: 103.70.170.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112259 (0x1b683)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 12 23:05:35 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91F6B3D/serialNumber=7B15015DDB9F84412A67DB3E26FECB4DDCBBD980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:6f:02:30:98:ea:4f:bc:3a:17:b9:a3:32:57:
1f:3b:03:1d:59:59:f8:1a:03:86:01:05:43:c2:08:
9a:d1:14:88:63:05:22:be:05:83:15:70:22:64:6e:
79:f5:1f:7b:58:1a:08:02:36:91:6b:18:9c:6f:0f:
a9:a3:4e:47:24:ab:a9:ed:ef:5d:53:f5:c5:e5:db:
93:6f:b2:2b:b9:7e:74:de:74:ca:b9:8e:fa:be:d1:
e5:be:25:8d:e5:d9:a5:76:9d:dc:ab:41:fa:8f:b0:
c8:f6:0c:9d:3f:a1:a9:dc:f0:67:79:fc:22:cc:ba:
9a:c9:00:a3:21:60:4c:f7:87:41:72:b3:3f:ec:20:
29:92:16:b3:db:ed:5b:ae:08:fb:6e:4a:7c:34:a1:
40:cc:c8:96:29:91:0a:c9:e3:7d:50:c4:40:ad:2f:
27:6f:24:d2:c3:68:0d:47:c7:31:b3:a2:b2:72:02:
96:a2:98:bc:3b:c6:b4:99:49:e5:57:ed:8e:a8:9a:
7e:12:96:33:f3:13:a4:c4:63:9b:8d:4f:1f:6c:c6:
b5:98:fe:9b:b5:44:11:78:62:d8:f1:c8:5e:0b:b3:
c3:73:68:f0:06:f4:c8:c7:2b:85:87:2a:54:a1:9d:
ac:d5:66:a4:a7:e8:9d:e8:65:95:99:2d:86:3a:3f:
0a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:15:01:5D:DB:9F:84:41:2A:67:DB:3E:26:FE:CB:4D:DC:BB:D9:80
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F6B3D/0E978E64596211EBA40B5C85C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F6B3D/0E978E64596211EBA40B5C85C4F9AE02/exUBXdufhEEqZ9s-Jv7LTdy72YA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132099
sbgp-ipAddrBlock: critical
IPv4:
103.70.170.0/23
Signature Algorithm: sha256WithRSAEncryption
55:43:3b:d9:e6:e3:88:2e:96:b1:cd:78:0b:91:b8:4f:cf:48:
9e:c6:63:45:0e:ac:3f:03:86:9a:5b:d5:ba:bd:d5:87:3d:83:
f6:8c:15:7c:2c:dc:ca:5e:35:08:d5:83:05:af:a3:1b:e0:7d:
fd:4e:26:b2:d1:60:f6:27:f7:25:a9:eb:7c:4f:5e:3c:81:a7:
1b:e1:1b:6f:55:03:70:5b:e3:b3:cf:e5:0f:25:c7:27:b7:84:
09:55:56:88:db:8b:97:ae:5a:5c:94:06:0e:17:72:0d:4d:7a:
63:96:d0:10:78:5a:a6:81:4a:d6:7e:44:db:04:d5:3c:1c:a8:
07:f9:ab:50:ee:16:45:24:49:dd:41:f1:dd:9e:80:77:1a:25:
90:cd:82:09:98:6e:6e:3e:e5:4b:7b:79:80:64:7b:a1:04:ac:
6d:25:1a:9e:c2:c0:20:41:e9:89:e0:2d:fb:61:71:58:16:1e:
30:a3:48:70:c3:46:ef:5e:df:94:88:68:88:1b:01:2a:81:42:
62:29:3a:f6:ab:ef:1a:df:de:c5:2a:15:ff:bc:07:b7:1a:d0:
7a:75:2a:b6:10:08:b2:16:65:4e:84:92:ee:7d:28:8e:60:d2:
5f:5e:60:85:cf:e4:b8:ad:79:00:71:51:93:c1:c4:39:95:ef:
f2:1d:07:42
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAbaDMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDgxMjIzMDUzNVoXDTI0MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRjZCM0QxMTAvBgNVBAUTKDdCMTUwMTVEREI5Rjg0NDEyQTY3REIz
RTI2RkVDQjRERENCQkQ5ODAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDtbwIwmOpPvDoXuaMyVx87Ax1ZWfgaA4YBBUPCCJrRFIhjBSK+BYMVcCJkbnn1
H3tYGggCNpFrGJxvD6mjTkckq6nt711T9cXl25Nvsiu5fnTedMq5jvq+0eW+JY3l
2aV2ndyrQfqPsMj2DJ0/oanc8Gd5/CLMuprJAKMhYEz3h0Fysz/sICmSFrPb7Vuu
CPtuSnw0oUDMyJYpkQrJ431QxECtLydvJNLDaA1HxzGzorJyApaimLw7xrSZSeVX
7Y6omn4SljPzE6TEY5uNTx9sxrWY/pu1RBF4YtjxyF4Ls8NzaPAG9MjHK4WHKlSh
nazVZqSn6J3oZZWZLYY6Pwp3AgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUexUBXduf
hEEqZ9s+Jv7LTdy72YAwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUY2QjNELzBFOTc4RTY0NTk2MjExRUJBNDBCNUM4NUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFGNkIzRC8wRTk3OEU2NDU5NjIxMUVCQTQwQjVDODVDNEY5QUUwMi9leFVCWGR1
ZmhFRXFaOXMtSnY3TFRkeTcyWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgQDMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0aqMA0GCSqG
SIb3DQEBCwUAA4IBAQBVQzvZ5uOILpaxzXgLkbhPz0iexmNFDqw/A4aaW9W6vdWH
PYP2jBV8LNzKXjUI1YMFr6Mb4H39Tiay0WD2J/clqet8T148gacb4RtvVQNwW+Oz
z+UPJccnt4QJVVaI24uXrlpclAYOF3INTXpjltAQeFqmgUrWfkTbBNU8HKgH+atQ
7hZFJEndQfHdnoB3GiWQzYIJmG5uPuVLe3mAZHuhBKxtJRqewsAgQemJ4C37YXFY
Fh4wo0hww0bvXt+UiGiIGwEqgUJiKTr2q+8a397FKhX/vAe3GtB6dSq2EAiyFmVO
hJLufSiOYNJfXmCFz+S4rXkAcVGTwcQ5le/yHQdC
-----END CERTIFICATE-----
Generated at Sat Apr 20 05:37:13 2024 by rpki-client on console-ams.rpki-client.org